CLAIMS 

Please amend the claims as follows. 
1.-15. (Canceled) 



16. (Currently amended) A method for operating a local area network (LAN), 
comprising: 

requesting access to a wired LAN; 

generating a first authentication message including validating information about an 
access point directly connected to the wired LAN; 

transmitting the first authentication message from the access point to a wireless device 
over a wireless channel; 

validating the access point by analyzing the first authentication message without going 
through a firewall means responsive to the requesting; 

generating a second authentication message including validating information about the 
wireless device and a wireless device operator; 

transmitting the second authentication message from the wireless device to the access 

point; 

validating the wireless device by analyzing the second authentication message without 
going through the firewall means responsive to the requesting; 

transmitting the first and second authentication messages to an authentication server after 
validating the access point and the wireless device without going through the firewall means; 

validating the operator, the wireless device, and the access point without going through 
the firewall means responsive to the requesting; and 

enabling a data channel between the wireless device and other devices on the wired LAN 
after validating the operator, the wireless device, and the access point, 

where validating the access point, the wireless device, and the operator occurs at an 
authentication means server . 

17. (Previously presented) The method of claim 16 where transmitting the first 
authentication message includes transmitting information about the access point contained in a 
first authentication device. 
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18. (Previously presented) The method of claim 17 where transmitting the second 
authentication message includes transmitting information about the wireless device and the 
operator contained in a second authentication device. 

19. (Previously presented) The method of claim 16 where transmitting the first and 
second authentication messages includes establishing a control channel between the access point 
and the authentication server. 

20. (Original) The method of claim 16 including encrypting information transferred over 
the wireless and control channel. 

21 . (New) A secure local area network (LAN), comprising: 
a firewall directly cormected to control access to a wired LAN; 

a wireless device operated by a wireless device operator to generate a first authentication 
message including validating information about the wireless device and the wireless device 
operator; 

an access point directly connected to the wired LAN in communication with the wireless 
device through an air channel to authenticate the wireless device and the wireless device operator 
without going through the firewall by analyzing the first authentication message, to generate a 
second authentication message including validating information about the access point, and to 
transmit the second authentication message to the wireless device; and 

an authentication server coupled to the wired LAN to provide the wireless device 
operator with access to the wired LAN by authenticating the wireless device, the wireless device 
operator, and the access point without going through the firewall responsive to receiving the first 
and second authentication messages from the access point and responsive to a request from the 
wireless device and the wireless device operator to access the wired LAN; 

where the wireless device is constructed to validate the access point by analyzing the 
second authentication message. 
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